Forcepoint Security Labs have recently observed a malicious email campaign delivering what appears to be a new variant of the Geodo/Emotet banking malware, predominantly to .UK TLDs across a range of sectors including addresses at major business and government departments.
Article Link: https://blogs.forcepoint.com/security-labs/new-variant-geodoemotet-banking-malware-targets-uk